How we protectyour data
We process thousands of bank statements and financial documents daily. Here's how we keep your data secure from inbox to analysis.
Secure inbox connection
We connect to your email using OAuth 2.0 authentication—no passwords stored. Our polling system checks for new documents using encrypted connections and processes them immediately. Email credentials are never stored on our servers.
Encrypted storage
Documents are immediately encrypted with AES-256 and stored in locked-down S3 buckets with strict access policies. Only authorized processing services can access files, and all access is logged. Storage is geographically isolated and backed up securely.
Isolated processing
Each document is processed in an ephemeral, isolated environment that's destroyed after completion. AI models run in sandboxed containers with no internet access. Your data never leaves our secure processing pipeline and is never used for model training.
Team access & monitoring
Role-based permissions ensure team members only access what they need. Multi-factor authentication is required. All actions are logged in immutable audit trails, and unusual activity triggers immediate alerts. Sessions can be revoked instantly.
Deployment options
Run Pathway in our secure cloud environment or deploy on-premises in your own infrastructure. Self-hosted deployments give you complete control over data residency and compliance requirements while maintaining the same security standards.
Technical summary
Data encrypted in transit (TLS 1.3) and at rest (AES-256)
Zero-trust network architecture with least-privilege access
SOC 2 Type II compliance in progress, GDPR and CCPA compliant
Regular security audits and penetration testing
Questions about security?
We're happy to discuss our security practices, help with compliance reviews, or walk through our implementation for your specific requirements.